add MAP_DROPPABLE introduced by recent QT
(boo#1238826, boo#1239780)
- Chromium 135.0.7049.52
(stable release 2025-04-01) (boo#1240555)
* CVE-2025-3066: Use after free in Navigations
* CVE-2025-3067: Inappropriate implementation in Custom Tabs
* CVE-2025-3068: Inappropriate implementation in Intents
* CVE-2025-3069: Inappropriate implementation in Extensions
* CVE-2025-3070: Insufficient validation of untrusted input in Extensions
* CVE-2025-3071: Inappropriate implementation in Navigations
* CVE-2025-3072: Inappropriate implementation in Custom Tabs
* CVE-2025-3073: Inappropriate implementation in Autofill
* CVE-2025-3074: Inappropriate implementation in Downloads
- modified patches:
system-libdrm.patch (context update)
gcc-enable-lto.patch (context update)
chromium-127-constexpr.patch (context update)
chromium-norar.patch (context update)
- added patches:
gtk-414.patch (reverse apply since our gtk4 is too old)
- add to keeplibs:
third_party/protobuf/third_party/utf8_range
- drop from keeplibs:
third_party/iccjpeg (gone upstream)
- config variable changed from use_qt to use_qt5
- bump buildrequires for gn to 0.20250306
- drop chromium-134-revert-allowlist.patch
(obsolete, gn has been updated)
- also use nodejs 22 for sle15
OBS-URL: https://build.opensuse.org/package/show/network:chromium/ungoogled-chromium?expand=0&rev=111
chromium-134-revert-allowlist.patch
(need updated gn anyway)
- replace patch
chromium-134-specialize-some-to_value_list.patch
by patch
chromium-134-type-mismatch-error.patch (from fedora)
- Chromium 134.0.6998.35
(stable release 2025-03-04) (boo#1238575)
* CVE-2025-1914: Out of bounds read in V8
* CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in DevTools
* CVE-2025-1916: Use after free in Profiles
* CVE-2025-1917: Inappropriate Implementation in Browser UI
* CVE-2025-1918: Out of bounds read in PDFium
* CVE-2025-1919: Out of bounds read in Media
* CVE-2025-1921: Inappropriate Implementation in Media Stream
* CVE-2025-1922: Inappropriate Implementation in Selection
* CVE-2025-1923: Inappropriate Implementation in Permission Prompts
- modified patches:
fix_building_widevinecdm_with_chromium.patch
(do not define WIDEVINE_CDM_VERSION_STRING, gone upstream)
system-libdrm.patch (context update)
- added patches:
chromium-134-revert-allowlist.patch
(avoid having to update gn on all targets)
chromium-134-revert-rust-adler2.patch
(revert rust change from adler to adler2 while we have 1.83)
chromium-134-specialize-some-to_value_list.patch
- dropped patches (llvm17 is gone):
OBS-URL: https://build.opensuse.org/package/show/network:chromium/ungoogled-chromium?expand=0&rev=106
* CSS text-wrap: balance is available
* Cookies partitioned by top level site (CHIPS)
* New Popover API
- Security fixes:
* CVE-2023-2929: Out of bounds write in Swiftshader
* CVE-2023-2930: Use after free in Extensions
* CVE-2023-2931: Use after free in PDF
* CVE-2023-2932: Use after free in PDF
* CVE-2023-2933: Use after free in PDF
* CVE-2023-2934: Out of bounds memory access in Mojo
* CVE-2023-2935: Type Confusion in V8
* CVE-2023-2936: Type Confusion in V8
* CVE-2023-2937: Inappropriate implementation in Picture In Picture
* CVE-2023-2938: Inappropriate implementation in Picture In Picture
* CVE-2023-2939: Insufficient data validation in Installer
* CVE-2023-2940: Inappropriate implementation in Downloads
* CVE-2023-2941: Inappropriate implementation in Extensions API
- Drop patches:
* chromium-103-VirtualCursor-std-layout.patch
* chromium-113-system-zlib.patch
* chromium-113-workaround_clang_bug-structured_binding.patch
- Add patches
* chromium-114-workaround_clang_bug-structured_binding.patch
* chromium-114-lld-argument.patch
- Un-bundle zlib again
- Remove un-needed patches:
* chromium-112-default-comparison-operators.patch
* chromium-109-clang-lp154.patch
* chromium-clang-nomerge.patch
OBS-URL: https://build.opensuse.org/package/show/network:chromium/ungoogled-chromium?expand=0&rev=23
